Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
File: yu79CETrE5qyH4DUByzguO3MBrU.mft (raw, json)
Hash identifier: 5PSXKxEBsJEcb/eE8pBC4xoAnqGehEhlFpVCh/Mvls4=
Subject key identifier: 0B:FE:23:64:02:90:5E:B5:9E:00:CE:6B:AB:46:A3:5F:75:24:27:13
Authority key identifier: CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
Certificate issuer: /CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Certificate serial: 01965DCCFA6AA7734D5EDA4ED40194303ADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
Manifest number: 0153
Signing time: Tue 22 Apr 2025 14:00:36 +0000
Manifest this update: Tue 22 Apr 2025 14:00:36 +0000
Manifest next update: Wed 23 Apr 2025 14:00:36 +0000
Files and hashes: 1: Zja22H7huKyd4DPgiFnlD1La7Es.roa (hash: AXLErsCzJc/qr3Tna9lN0B3Ap4Vz9K2Svk3Dy2hJER8=)
2: yu79CETrE5qyH4DUByzguO3MBrU.crl (hash: PAObL2AF0GmTYMP1BitEAfDnT59PgZ0N6IHRFOSAknc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:cc:fa:6a:a7:73:4d:5e:da:4e:d4:01:94:30:3a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Validity
Not Before: Apr 22 14:00:36 2025 GMT
Not After : Apr 23 14:00:36 2025 GMT
Subject: CN=0bfe236402905eb59e00ce6bab46a35f75242713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0f:e0:52:e0:e7:f8:b3:c4:b4:57:89:1a:fc:
48:58:e8:04:ae:d3:c7:3a:be:df:ed:c1:65:0e:7b:
7f:55:93:28:6a:3b:c9:09:68:49:25:9f:ad:9d:d7:
01:7e:aa:10:bc:95:1b:a4:3c:22:78:fe:27:c4:7d:
19:df:b0:8b:2b:79:86:69:79:0b:43:0c:25:36:41:
d9:52:b0:49:1f:66:23:bf:05:25:6b:bd:d4:b0:82:
e3:7d:a6:36:b0:b5:ad:48:d1:da:52:6f:90:50:89:
a1:bf:0c:0f:0a:cc:5f:e5:aa:2b:12:43:e3:b4:b3:
c1:4e:07:3e:98:ef:e6:c9:37:ac:b8:8f:27:46:da:
78:f2:6d:5b:fa:41:0b:d1:c8:98:20:ba:97:f6:79:
7b:fd:96:e0:b7:fa:6b:6f:70:17:98:3f:33:36:6f:
06:46:68:6a:79:0e:64:8e:40:15:92:17:f9:ba:90:
2e:95:59:10:97:3a:4a:22:32:19:ce:50:b9:55:0a:
48:f6:a1:b5:38:04:22:bc:bb:b3:55:d7:1c:69:3e:
93:e7:be:ef:22:49:8d:8e:5b:47:5f:41:d5:c1:95:
20:27:ef:6c:9b:96:6f:05:4e:69:5a:3c:0a:f1:b2:
f9:73:3e:90:a7:f5:f3:72:3e:72:f3:81:f1:45:2e:
32:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FE:23:64:02:90:5E:B5:9E:00:CE:6B:AB:46:A3:5F:75:24:27:13
X509v3 Authority Key Identifier:
keyid:CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b6:f8:de:8c:74:00:c3:ea:7e:2b:22:a2:e2:63:49:c2:a9:
ab:f5:54:23:94:5e:51:7c:29:89:6c:86:74:fd:3b:5f:07:06:
4c:c8:61:12:c1:fb:bc:e5:43:7a:0d:d9:ef:58:84:f9:37:fd:
5f:6c:db:24:75:68:7c:a6:62:93:ab:b7:15:c8:53:3c:cb:df:
72:bb:ba:00:ca:a6:4d:a2:d7:d2:1d:bf:66:89:3f:3c:ae:fc:
f3:16:58:7e:49:ae:c3:15:08:a8:55:40:d0:b8:e2:8d:a2:03:
c9:2c:f6:94:53:1a:73:53:5f:5a:1b:82:bd:c8:d8:36:d3:a0:
63:2e:b6:df:2a:e3:98:dd:61:38:2a:3d:e1:33:90:19:b7:fd:
23:13:2d:25:dc:bc:69:c5:db:a8:e9:30:c5:fe:3a:5b:1b:69:
2b:6b:53:91:de:0a:e1:1e:12:76:12:85:87:bd:44:a5:eb:5f:
1f:95:03:be:e3:ec:5f:d1:d8:6b:f3:74:1d:33:98:f9:99:ce:
82:09:78:54:05:de:88:0d:ee:c8:1d:9d:12:c1:22:de:d9:58:
3a:c7:e3:99:95:ea:71:73:54:b7:eb:5e:8e:c0:c3:0f:f1:a6:
0c:82:16:63:ef:9f:57:e2:69:0a:a9:48:33:22:64:0b:6e:73:
db:1a:7f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:26:51 2025 by rpki-client